Ransomware victim disclosure
← All victimsCanopy Brands
listed as canopybrands.us · Claimed by Settra · listed 5 days ago
Status timeline
- ListedJun 28, 2026
- Data leakeddate unknown
At a glance
- Group
- Settra
- Status
- Data leaked
- Country
- Canada
- Sector
- Consumer Services
- Listed on leak site
- Jun 28, 2026
About the victim
AI dossier — public-source company profileCanopy Brands is a holding company that owns specialized manufacturers of occupational safety equipment, primarily fall protection and confined space rescue solutions. The company operates brands including Safewaze (fall arrest equipment), HySafe (customized fall protection services), and Xtirpa (confined space equipment), offering over 7,000 products serving construction, industrial, manufacturing, and utility sectors.
- Industry
- Fall Protection & Safety Equipment Manufacturing
Attack summary
Severity: medium — Data published status and exfiltration claimed by the group, but the leak post is heavily truncated and provides no specific inventory of sensitive data types, proof file counts, or evidence of regulated information (PII, financial records, medical data). Without visibility into proof materials or data specificity, cannot elevate to 'high'.The Settra group claims to have compromised Canopy Brands and exfiltrated data, characterizing the attack as a holding company that 'failed to keep its own data safe.' The specific data categories and operational impact are not detailed in the truncated leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate/business data
- Internal systems access
What the group claims
Limit of Travel A holding company that sells people safety at height failed to keep its own data saf...
Sources
Source
Indexed 5 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

